Methods and systems for controller-based secure session key exchange over unsecured network paths
First Claim
Patent Images
1. A method comprising:
- determining, by a multi-tenant controller on a network, that a link should be established between a first site and a second site on the network;
if a determination is made that a link should be established between the first site and the second site, then generating, by the multi-tenant controller on the network, a unique common shared secret for establishing a secure link between the first site and the second site;
transmitting, by the multi-tenant controller, the unique common shared secret to both the first site and the second site over a secured certificate authenticated channel;
assigning, by the multi-tenant controller, a wall clock based start and end validity period for the common shared secret;
wherein the common shared secret is transmitted with a validity period in the future to allow secure link communication between the first site and the second site to continue, using a secure session key derived from the common shared secret, if one or more elements in both the first and the second site cannot communicate with the multi-tenant controller; and
using a unique corresponding shared secret for each link per VXWAN (virtual extensible wide area network).
4 Assignments
0 Petitions
Accused Products
Abstract
A method includes generating at a multi-tenant controller on a network a common shared secret for establishing a link between a first site and a second site, transmitting the shared secret to each of the first site and the second site over a secured channel, assigning a wall clock based start and end validity period for the shared secret, sending the shared secret with a future validity to allow secure link communication to continue if one or more elements in both sites cannot communicate with the multi-tenant controller and using a separate shared secret per link per VXWAN.
110 Citations
20 Claims
-
1. A method comprising:
-
determining, by a multi-tenant controller on a network, that a link should be established between a first site and a second site on the network; if a determination is made that a link should be established between the first site and the second site, then generating, by the multi-tenant controller on the network, a unique common shared secret for establishing a secure link between the first site and the second site; transmitting, by the multi-tenant controller, the unique common shared secret to both the first site and the second site over a secured certificate authenticated channel; assigning, by the multi-tenant controller, a wall clock based start and end validity period for the common shared secret; wherein the common shared secret is transmitted with a validity period in the future to allow secure link communication between the first site and the second site to continue, using a secure session key derived from the common shared secret, if one or more elements in both the first and the second site cannot communicate with the multi-tenant controller; and using a unique corresponding shared secret for each link per VXWAN (virtual extensible wide area network). - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method comprising:
-
determining, by a multi-tenant controller on a network, that a link should be established between a first channel end point and a second channel end point on the network; if a determination is made that a link should be established between the first channel end point and the second channel end point, then generating, by the multi-tenant controller, a unique plurality of shared secrets, each shared secret of the plurality of secrets having a corresponding validity period; transmitting, by the multi-tenant controller, the unique plurality of shared secrets to both the first channel end point and the second channel end point over a secured certificate authenticated channel; generating a plurality of nonce values for the first channel end point and the second channel end point; exchanging the nonce values between the first and the second channel end points; generating a plurality of session keys for secure communication on a channel between the first channel end point and the second channel end point, wherein each session key of the plurality of session keys is generated using a shared secret of the plurality of shared secrets during its corresponding validity period and a nonce value from the first channel end point and from the second channel end point; and refreshing the plurality of session keys at a predetermined time interval using another shared secret of the plurality of shared secrets during its corresponding validity period. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system comprising:
-
a first site; a second site in communication with the first site via a network; a non-transitory memory for storing program instructions; and a multi-tenant controller configured to execute the program instructions, configured to determine that a link should be established between the first site and the second site, configured to generate a unique common shared secret if the multi-tenant controller determines that a link between the first site and the second site should be established, and configured to transmit the shared secret to both the first site and the second site over a secured certificate authenticated channel, wherein the common shared secret is used for generating a session key for secure communication on an established link between the first site and the second site, wherein the multi-tenant controller is configured to assign a wall clock based start and end validity period for the common shared secret, and wherein the session key is generated and valid during the validity period for the common shared secret. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification